From 13a10d43141c29dad61868b451c0c1dca82360de Mon Sep 17 00:00:00 2001 From: Nadezhda Ivanova Date: Mon, 14 Oct 2013 12:38:10 +0300 Subject: s4-samldb: Do not allow deletion of objects with RID < 1000 According to [MS-SAMR] 3.1.5.7 Delete Pattern we should not allow deletion of security objects with RID < 1000. This patch will prevent deletion of well-known accounts and groups. Signed-off-by: Nadezhda Ivanova Reviewed-by: Andrew Bartlett Autobuild-User(master): Nadezhda Ivanova Autobuild-Date(master): Mon Oct 14 13:31:50 CEST 2013 on sn-devel-104 --- testdata/samba3/samba3.ldif | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'testdata') diff --git a/testdata/samba3/samba3.ldif b/testdata/samba3/samba3.ldif index 76792d09e5..3978777e27 100644 --- a/testdata/samba3/samba3.ldif +++ b/testdata/samba3/samba3.ldif @@ -94,10 +94,10 @@ displayName: Backup Operators dn: cn=Replicator,ou=Groups,sambaDomainName=TESTS,${BASEDN} objectClass: posixGroup objectClass: sambaGroupMapping -gidNumber: 552 +gidNumber: 1052 cn: Replicator description: Netbios Domain Supports file replication in a sambaDomainName -sambaSID: S-1-5-21-4231626423-2410014848-2360679739-552 +sambaSID: S-1-5-21-4231626423-2410014848-2360679739-1052 sambaGroupType: 2 displayName: Replicator -- cgit